Bug #23207 Bug Fixed

Your password must be at least %d characters long

Version: 3.5.10 Reporter: rolinm

When attempting to reset a password that’s too short, the user receives “your password must be at least %d characters long” error.

  • Thanks for the report- I’m not currently able to duplicate it. I tried logging into the cp and into the frontend, and both have the full ‘Passwords must be at least 7 characters in length’. What’s the URL look like when you see the message? And in your security settings, what’s your minimum password length set to?

    Robin Sowell
    23rd August, 2017 at 10:22am
  • It is within the password reset functionality, /member/forgot_password. I’ve tried various password lengths of 8 and higher and all receive the same %d message.

    rolinm
    23rd August, 2017 at 10:27am
  • Right, for some reason the %d isn’t being replaced by the number for you. But it works for me. What’s the actual URL you’re on when you see the message? You can change/omit the domain, but I want to be sure I’m looking in the right place.

    Robin Sowell
    23rd August, 2017 at 11:51am
  • There isn’t a URL path for the error page (showing at domain.com/). I had a third party add-on with auth hooks and completely took it out of the equation. I’m still receiving the %d.

    rolinm
    23rd August, 2017 at 12:02pm
  • After looking at the core, the language files have %d within them but the validation files are expecting to replace %x.

    rolinm
    23rd August, 2017 at 12:17pm
  • Ah- that’s why I wasn’t able to replicate. Native checks are using the models now, not the legacy validation.

    Good deal- I’ll get that fixed up for the next release. Let me know if you need the fix before then.

    Robin Sowell
    23rd August, 2017 at 12:54pm
  • Thanks. I can wait until the next release.

    rolinm
    24th August, 2017 at 6:41am

You must be signed in to comment on a bug report.

ExpressionEngine News

#eecms, #events, #releases